The Robust Manifold Defense: Adversarial Training using Generative Models

Cited by: 105|Views56

Abstract:

We propose a new type of attack for finding adversarial examples for image classifiers. Our method exploits spanners, i.e.~deep neural networks whose input space is low-dimensional and whose output range approximates the set of images of interest. Spanners may be generators of GANs or decoders of VAEs. The key idea in our attack is to s...More

Code:

Data:

Full Text
Bibtex
Your rating :
0

 

Tags
Comments